04 Oct 2019

New Android Cyberwarfare Attack Exposed—And It’s Hiding A Devious Twist

Earlier this week, the New York Times covered what it referred to as an “attack on Egyptian journalists, academics, lawyers, opposition politicians and human rights activists.” The report was based on recent research by Check Point, which in turn followed a report by Amnesty from March of this year. Check

Read More
04 Oct 2019

Update now: WhatsApp bug allows malicious GIF to steal user data

A security researcher using the moniker “Awakened” has uncovered a security flaw in WhatsApp that could make it possible for hackers to steal data from devices running the popular messaging app merely by targeting users with nefarious GIFs. After a malicious image is sent to the victim’s phone, it will

Read More
03 Oct 2019

Zendesk announces data breach impacting years-old accounts

Customer service software company Zendesk experienced a data breach in 2016 that impacted around 10,000 corporate customers, the company announced on Wednesday. Zendesk found out about the breach through a third-party and launched an investigation into the matter, which confirmed that the compromised data includes the full names, contact information,

Read More
30 Sep 2019

‘Hundreds Of Millions’ Of iPhones Vulnerable To New ‘Unfixable’ Hack

A researcher using the moniker ‘axi0mX’ has found a critical ‘jailbreak’ vulnerability affecting hundreds of millions of iOS devices, including iPhones, iPads and iPods. The flaw could be exploited in order to revoke Apple’s control over affected devices and run customer firmware on them. Axi0mX described the vulnerability as “a

Read More
30 Sep 2019

Hacker Steals Over 218 Million Zynga ‘Words with Friends’ Gamers Data

A threat actor using the moniker ‘Gnosticplayers’ recently told The Hacker News that he had compromised Zynga, a US developer of various  popular social games for mobile. The hacker claims to have stolen a database containing records on over 218 million players of Zynga’s ‘Words With Friends’ game for Android

Read More
27 Sep 2019

DoorDash confirms data breach affected 4.9 million customers, workers and merchants

Food delivery firm DoorDash on Thursday announced that it has suffered a data breach affecting 4.9 million customers, employees and merchants. DoorDash spokesperson Mattie Magdovitz pointed the finger to a “third-party service provider,” but failed to name the offending firm. On May 4 of this year, threat actors managed to

Read More
27 Sep 2019

Voting Machine Systems New & Old Contain ‘Design’ Flaws

Security experts have been questioning the security of electronic voting for years. In August of this year, attendants of the popular DEF CON hacker conference proved once again that both older and newer voting systems are vulnerable to hacking. One of the most popular DEF CON events was the Voting

Read More
27 Sep 2019

Airbus hit by series of cyber attacks on suppliers

In the last 12 months, threat actors have launched four supply-chain attacks targeting European multinational aerospace corporation Airbus via some of its suppliers, insiders told AFP. During this period, the company only publicly acknowledged a security incident in January, which reportedly led to “unauthorised access to data.” The AFP’s sources

Read More
26 Sep 2019

Inside the campaign that tried to compromise Tibetans’ iOS and Android phones

Various Tibetan organizations were the targeted of a six-month cyber espionage campaign targeting iOS and Android devices, a new Citizen Lab report shows. Hackers from a threat group dubbed Poison Carp contacted individuals via WhatsApp, while masquerading as journalists and human rights researchers. The attackers used social engineering to encourage

Read More
26 Sep 2019

vBulletin Zero-Day Exploited for Years, Gets Unofficial Patch

Threat actors have been exploiting a zero-day remote code execution vulnerability in order to attack web forums running vBulletin for years. The flaw came to light when a researcher published the zero-day on a vBulletin security mailing list. The bug can enable attackers to infect web forums with malware, alter

Read More